View Full Version : Backup of client in DMZ (Amanda backup with tunneling)

November 24th, 2005, 05:35 AM
Hi all,

I have the following situation:

- Backup-Server is in the intranet
- Backup-Client is in a DMZ
- TCP/IP connections could be allowed if initiated from backup server (from intranet to DMZ)

What I'm missing is a deeper understanding of all involved TCP/IP connection attempts when
a) A 'amcheck' is done.
b) A backup of the client is initiated by the backup server.
c) The client tries a regular restore contacting the index-server = backup-server = tape-server

So, please can someone tell me what connections are established in the above scenarios?

Thank you in advance.

Best regards
Andreas Mock

November 24th, 2005, 08:06 AM
amandad (sendbackup) initiates connection to the backup-server. It uses 3 ports to send backup.
(messages, index, data). 3 ports are choosen from the portrange you specify during configure.
by driver. Dumper (on backup server) listens to these 3 ports.

amandad (selfcheck) establishes a TCP connection. amcheck on the server communicates with
amandad on port 10080.

In the case of restore operation, the amrecover creates a socket connection
to amindexd, amtapeidxd. amindexd and amtapeidxd are xinetd services.

Some information about the ports used and how it is set up is
available at http://wiki.zmanda.com/index.php/TCP/UDP_ports

November 25th, 2005, 05:01 AM
Hi Paddy,

thank you for your reply and for your article in the Wiki.

Best regards
Andreas Mock